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DETAILED ACTION 

1 . The response of 7/30/20 1 0 was received and considered. 

2. Claims 64-91 are pending. 

Continued Examination Under 37 CFR 1.114 

3. A request for continued examination under 37 CFR 1.114, including the fee set forth in 37 CFR 
1.17(e), was filed in this application after final rejection. Since this application is eligible for continued 
examination under 37 CFR 1.114, and the fee set forth in 37 CFR 1 . 1 7(e) has been timely paid, the 
finality of the previous Office action has been withdraw n pursuant to 37 CFR 1.114. Applicant's 
submission filed on 7/30/2010 has been entered. 

Information Disclosure Statement 

4. The information disclosure statement (IDS) documents submitted on 6/3/2010, 7/1/2010 and 
7/30/2010 were considered by the examiner. 

Response to Arguments 

5. Applicant's arguments with respect to claims 64-87 have been considered but are moot in view of 
the new ground(s) of rejection. However, Applicant's response will be addressed. 

a. Applicant's response (pp. 11-12) argues the limitations in the claims are definite. 
However, it is believed that Applicant has misunderstood the Examiner's assertions. The 
Examiner asserts that certain claims recite limitations (for example, relating to relative processing 
power or memory security) are indefinite in light of the claim type; the alleged indefiniteness 
stems from the nature of the claim's invention. For example, claim 64 recites a method, a series 
of steps. Claim 64 recites, for example, "A method . . . comprising: each terminal forwarding . . . 
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the secure processing unit has processing power sufficient to decrypt . . .". In such a 
configuration, it is unclear how the processing power of the secure processing unit has an affect 
on the claimed invention, a method. This indefmiteness is evidence by questioning how the 
method steps would change if this limitation were removed; the Examiner contends that this 
limitation does not affect the method. In an effort to give Applicant the benefit of the doubt, the 
limitation has been examined as if it were required by the claim. However, the Examiner 
maintains that the claims are indefinite as comprising limitations that have seemingly no effect on 
the claim. 

b. Applicant's response (p. 13 ) asserts that the claim is clarified to convey that the secure 
processing unit has "more secure" storage than the mobile equipment. It is noted that Hawkes, 
1164-65, discloses that the UIM has more secure storage than the mobile equipment. 

c. Applicant's response (pp. 13-15) argues that the "RK of the Hawkes application 
publication is not similar to the private key of the Ahonen application publication, and that the 
BAK of the Hawkes application publication is not similar to the KEK of the Ahonen publication". 
It is noted that the key hierarchy of Hawkes and Ahonen is not identical. However, the top key in 
the hierarchy of Ahonen is the private key, and is therefore analogous to the RK of Hawkes. 
Further, it is noted that the public/private key system of Ahonen has benefits over Hawkes, such 
as allowing generation of a key pair within the system and allowing fast, simple association of the 
mobile equipment with another provider. Therefore, it is submitted that the rejection is 
reasonable and should be maintained. 

d. Applicant's response (p. 15) asserts that a skilled artisan would not have been motivated 
to use asymmetric encryption instead of the symmetric encryption because Hawkes states that 
symmetric encryption is generally much faster than public key encryption (it is noted that this 
was known in the art as well). However, two points are made. First, the BAK is decrypted with 
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RK infrequently and therefore a slower process is highly acceptable. Second, the benefits of the 
asymmetric distribution model (not having to securely transfer the top/highest key in the 
hierarchy) would be seen as beneficial in saving time and money in the system's implementation. 
Therefore, it is submitted that the rejection is reasonable and should be maintained. 



Claim Rejections - 35 USC § 112 

6. The following is a quotation of the second paragraph of 35 U.S.C. 1 12: 

The specification shall conclude with one or more claims particularly pointing out and distinctly claiming the 
subject matter which the applicant regards as his invention. 

7. Claims 64-71, 77-81 and 88-91 are rejected under 35 U.S.C. 112, second paragraph, as being 
indefinite for failing to particularly point out and distinctly claim the subject matter which applicant 
regards as the invention. 

e. Regarding claims 64-71, 77-81 and 88-91, the claims as amended, include limitations 
directed to the processing power or memory size of the respective components. However, it is 
unclear how or if these limitations have any effect on the scope of the method or machine 
readable medium claims, respectively. 

f. Regarding claim 88, lines 15-16, the limitation "the integrated circuit" lacks sufficient 
antecedent basis. 



Claim Rejections - 35 USC § 103 

8. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all obviousness 
rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in section 102 of 
this title, if the differences between the subject matter sought to be patented and the prior art are such that the subject matter as 
a whole would have been obvious at the time the invention was made to a person having ordinary skill in the art to which said 
subject matter pertains. Patentability shall not be negatived by the maimer in which the invention was made. 
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9. Claims 64-69, 71-75, 77-80, 82-85 and 88-90 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over U.S. Patent Application Publication 2002/0141591, published 1 1/3/2002 to Hawkes et 
al. (Hawkes) in view of U.S. Patent Application Publication 2006/0168446 to Ahonen et al. (Ahonen). 

Regarding claim 64, Hawkes discloses a method for receiving encrypted multimedia content 
broadcast over the air (mobile stations tune to broadcast frequency, 1)57) from a content provider (content 
server, 163) to a plurality of terminals (MS) authorized based on a broadcast access key (mobile 
equipment receives BAK ultimately from having an authorized UIM, 1)70), comprising each terminal 
having a mobile equipment (ME, Fig. 4, #306) and having a secure processing unit (UIM, Fig. 4, #308) 
that securely stores a unique key (RK is stored in SUMU, Fig. 4, #3 14, 1)74), such that the unique private 
key is not accessible to the mobile equipment of the respective terminal ( SUMU discourages unauthorized 
access to the information, f 65 and RK is not provided to the ME, 172), key storage in the secure 
processing unit (secure UIM memory, f 65) is more secure than key storage in the mobile equipment 
(SUMU has a secure memory unit, f 65, where the ME is insecure, 164), the secure processing unit 
(SUPU) has processing power sufficient to decrypt an encrypted broadcast access key (BAK is received 
by UIM in encrypted form, f 70) and to generate a short term key (UIM is able to recover the value of 
BAK, *p0 and able to able to compute SK, f 73) and the secure processing unit does not have processing 
power sufficient to deciypt encrypted multimedia content (SUPU does not have significant processing 
power for functions beyond security and key procedures such as to allow encryption of the broadcast 
content of the HSBS, 166) and the broadcast access key (BAK) is encrypted by the content provider using 
the unique keys (RK) of each of the respective terminals to authorize the respective terminal to receive 
the encrypted multimedia content (BAK is encrypted with RK, 174), each terminal receiving the 
encrypted broadcast access key (BAK) over the air from the content provider (BAKI is received from CS, 
174) and providing the encrypted broadcast access key (BAKI is passed to the UIM, f 74) to the terminal's 
secure processing unit (UIM, 174), wherein the terminal's secure processing unit (UIM) decrypts the 



Application/Control Number: 1 0/6 1 5,882 Page 6 

Art Unit: 2439 

encrypted broadcast access key (BAKI) using the secure processing unit's unique key (RK is used in the 
UIM to decrypt BAK from BAKI, |74) and securely stores the broadcast access key (BAK is stored in 
SUMU, 1(74), wherein the securely stored broadcast access key is not accessible to the mobile equipment 
(1(65), each terminal receiving short-term key information (SKI, 1)76 & 1R8) and encrypted multimedia 
content (received broadcast content, f 80) over the air from the content provider (CS), to the terminals 
MS, 1(76 & 1(80), wherein the content is encrypted with a short-term key (1)81), and wherein the short-term 
key is generated using the broadcast access key (BAK) and short-term key information (SKI and BAK are 
processed to determine SK, |76), and provides the short-term key (SK) to the terminal's mobile 
equipment (SK is passed to ME, ff 80-8 1 , last two lines of each), and each terminal's mobile equipment 
decrypting the multimedia content using the short-term key (ME decrypts the received broadcast content, 
80-81, last two lines of each). Hawkes lacks each terminals forwarding a unique public key over the air 
to the content provider and lacks wherein the secure processing unit stores a unique private key (instead 
of Hawkes's RK), corresponding to the unique public key. However, Ahonen teaches a system where a 
terminal forwards a unique public key over the air (over a 3G network, ]|37) to a content provider 
(terminal sends a registration message to a group controller, the message including a copy of the 
terminal's public key, f 38), wherein each terminal stores a unique private key corresponding to the 
unique public key (terminal creates a signature using the private key, ]|38 & ]|42, showing that the 
terminal stores the private key). Similarly to Hawkes's RK, the private key that corresponds to the 
forwarded unique public key in Ahonen is used to decrypt a received encrypted key encrypting key 
(KEK), which is similar to Hawkes's BAK fl|41). The KEK is then used to decrypt a received encrypted 
traffic encrypting key (TEK, |41) which decrypts the broadcast content (1(36) that is received, possibly 
from the group controller fl[19). Therefore, it would have been obvious to one having ordinary skill in the 
art at the time the invention was made to modify Hawkes such that each terminal (MS) forwards a unique 
public key over the air to the content provider (CS), wherein the secure processing unit (UIM) stores a 
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unique private key (instead of Hawkes's RK), corresponding to flic unique public key. One of ordinary 
skill would have been motivated to perform this modification to achieve a simple mechanism for key 
dissemination, as taught by Ahonen (17). One of ordinary skill in the art at the time the invention was 
made would appreciate this benefit because Ahonen is using the existing, well-known, public key 
infrastructure to share a key, rather than a more complex protocol such as AKA or IKE. 

Regarding claim 65, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
accessible to a user (Hawkes discloses that data in the ME is easily accessed, 1)64 and that SK is passed to 
the ME for decrypting of the broadcast content, therefore, the SK is accessible to a user). 

Regarding claim 66, Hawkes, as modified above, discloses wherein the short-term key is changed 
by the content provider at a rate such that the cost of an unauthorized terminal user obtaining the short- 
term key from the mobile equipment exceeds the value of the short-term key to the unauthorized terminal 
user (Hawkes discloses that the SK is changed frequently such that the cost of a non-subscriber obtaining 
SK form the memory exceeds the value of SK, 168). 

Regarding claim 67, Hawkes, as modified above, discloses wherein the secure processing unit 
(UIM) is removable from the terminal (166). 

Regarding claim 68, Hawkes, as modified above, discloses wherein the short-term key 
information (SKI) is the short-term key encrypted using the broadcast access key (SKI may be the 
encryption of SK using BSK as the key, 176). 

Regarding claim 69, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
generated by applying a cryptographic hash to a concatenation of the short-term key information (SKI) 
and the broadcast access key (BAK, 176, last three lines). 

Regarding claim 71, Hawkes, as modified above, discloses wherein at least one terminal (MS) 
comprises a mobile station (Fig. 3, #206 & 157). 
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Regarding claim 72, Hawkes discloses an integrated circuit (1(107) for a mobile station (MS, Fig. 
4, #300) comprising means for securely storing a unique key (RK is stored in SUMU, Fig. 4, #314, 1(74) 
such that the unique key is not accessible to a user (SUMU discourages unauthorized access to the 
information, 1(65 and RK is not provided to the ME, %72), wherein the means for securely storing (SUPU) 
has processing power sufficient to decrypt an encrypted broadcast access key (BAKI, 1(70) and to 
generate a short term key (UIM is able to recover the value of BAK, 1)70 and able to able to compute SK, 
173), and does not have processing power sufficient to deciypt encrypted multimedia content (SUPU does 
not have significant processing power for functions beyond security and key procedures such as to allow 
encryption of the broadcast content of the HSBS, 1(66) and wherein broadcast access key (BAK) is 
encrypted by the content provider (CS, 1(70) with each of the unique keys (RK) to authorized an 
integrated circuit securely storing a corresponding key to receive the encrypted multimedia content (BAK 
is encrypted with RK, 1|74 and RK is stored in the UIM, %74), means (MS) for receiving the encrypted 
broadcast access key (BAK) over the air from the content provider (BAKI is received from CS, f 74), 
means (MS) for decrypting the encrypted broadcast access key (BAKI) using the secure processing unit's 
unique key (RK is used in the UIM to deciypt BAK from BAKI, 1(74) and securely storing the broadcast 
access key (BAK is stored in SUMU, 1(74), wherein the securely stored broadcast access key is not 
accessible to a user (SUMU discourages unauthorized access to the information, 1(65 and the BAK is 
stored in the SUMU, 1(74), means (MS) for receiving short-term key information (SKI, f76 & f78) and 
encrypted multimedia content (received broadcast content, 1)80) over the air from the content provider 
(CS) to the a plurality of mobile stations (Fig. 3, #206) each having the integrated circuit (MS, 1(76 & 1(80, 
Fig. 4, #300), wherein the content is encrypted with a short-term key (1)81), and wherein the short-term 
key is generated using the broadcast access key (BAK) and short-term key information (SKI and BAK are 
processed to determine SK, 1(76), means (MS) for generating the short term key using the securely stored 
broadcast access key (BAK) and the broadcast short-term key information (SKI and BAK are processed 
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to determine SK, |76) and means (MS) for decrypting the multimedia content using the short-term key 
(ME decrypts the received broadcast content using SK, ^80-81, last two lines of each), wherein key 
storage in the means for securely storing more secure than key storage in the means for decrypting the 
multimedia content (UIM, |65, where the ME is not considered secure, 164). Hawkes lacks forwarding a 
unique public key over the air to the content provider and lacks securely storing a unique private key 
(instead of Hawkes's RK), corresponding to the unique public key. However, Ahonen teaches a system 
where a terminal forwards a unique public key over the air (over a 3G network, 137) to a content provider 
(terminal sends a registration message to a group controller, the message including a copy of the 
terminal's public key, 1(38), wherein each terminal stores a unique private key corresponding to the 
unique public key (terminal creates a signature using the private key, 138 & 1)42, showing that the 
terminal stores the private key). Similarly to Hawkes's RK, the private key that corresponds to the 
forwarded unique public key in Ahonen is used to decrypt a received encrypted key encrypting key 
(KEK), which is similar to Hawkes's BAK (1f41). The KEK is then used to decrypt a received encrypted 
traffic encrypting key (TEK, 141) which decrypts the broadcast content (136) that is received, possibly 
from the group controller (119). Therefore, it would have been obvious to one having ordinary skill in the 
art at the time the invention was made to modify Hawkes's terminal such that each terminal (MS) 
forwards a unique public key over the air to the content provider (CS), wherein the secure processing unit 
(UIM) stores a unique private key (instead of Hawkes's RK), corresponding to the unique public key. 
One of ordinary skill would have been motivated to perform this modification to achieve a simple 
mechanism for key dissemination, as taught by Ahonen (17). One of ordinary skill in the art at the time 
the invention was made would appreciate this benefit because Ahonen is using the existing, well-known, 
public key infrastructure to share a key, rather than a more complex protocol such as AKA or IKE. 
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Regarding claim 73, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
accessible to a user (Hawkes discloses that data in the ME is easily accessed, 1(64 and that SK is passed to 
the ME for decrypting of the broadcast content, |f78; therefore, the SK is accessible to a user). 

Regarding claim 74, Hawkes, as modified above, discloses wherein the short-term key 
information (SKI) is the short-term key encrypted using the broadcast access key (SKI may be the 
encryption of SK using BSK as the key, f76). 

Regarding claim 75, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
generated by applying a cryptographic hash to a concatenation of the short-term key information (SKI) 
and the broadcast access key (BAK, 1(76, last three lines). 

Regarding claim 77, Hawkes discloses a non-transitory machine-readable medium (1(108) 
comprising code for securely storing a unique key (RK is stored in SUMU, Fig. 4, #314, 1(74), in a secure 
processing unit of a terminal (UIM) such that the unique key is not accessible to a mobile equipment of 
the terminal (SUMU discourages unauthorized access to the information, |65 and RK is not provided to 
the ME, 1(72), wherein key storage the secure processing unit is more secure than key storage in the 
mobile equipment (UIIM is secure, 1(65, where ME is not considered secure, 1(64), wherein the secure 
processing unit (SUPU) has processing power sufficient to decrypt an encrypted broadcast access key 
(170) and to generate a short term key (UIM is able to recover the value of BAK, 1(70 and able to able to 
compute SK, 1(73), but does not have processing power sufficient to decrypt encrypted multimedia 
content (SUPU does not have significant processing power for functions beyond security and key 
procedures such as to allow encryption of the broadcast content of the HSBS, 1(66) and wherein the 
broadcast access key is encrypted by the content provider (CS) using the unique keys (RK) to authorize 
the terminal to receive the encrypted multimedia content (BAK is encrypted with RK, 1(74 and RK is 
stored in the UIM, 1(74), code (MS, 1(108) for receiving the encrypted broadcast access key (BAK) over 
the air from the content provider (BAKI is received from CS, 1(74), code (MS, 1(108) for decrypting the 
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encrypted broadcast access key (BAKI) using the secure processing unit's unique key (RK is used in the 
UIM to decrypt BAK from BAKI, |74) and securely storing the broadcast access key (BAK is stored in 
SUMU, 1(74), wherein the securely stored broadcast access key is not accessible to a the mobile 
equipment (SUMU discourages unauthorized access to the information, ^65 and the BAK is stored in the 
SUMU, K74, UIM is separate from the ME, 1fl[64-70), code (MS, f 108) for receiving short-term key 
information (SKI, |76 & |78) and encrypted multimedia content (received broadcast content, |80) over 
the air from the content provider (CS) to the a plurality of terminals (Fig. 3, #206), wherein the 
multimedia content is encrypted with a short-term key (1)81), and wherein the short-term key is generated 
using the broadcast access key (BAK) and short-term key information (SKI and BAK are processed to 
determine SK, |76), code (MS, 1(108) for generating the short term key using the securely stored 
broadcast access key (BAK) and the broadcast short-term key information (SKI and BAK are processed 
to determine SK, 1|76) and code (MS, 1|K)8) for decrypting the multimedia content using the short-term 
key (ME decrypts the received broadcast content using SK, ffl[80-81, l ast tw0 nnes of each). Hawkes 
lacks forwarding a unique public key over the air to the content provider and lacks securely storing a 
unique private key (instead of Hawkes' s RK), corresponding to the unique public key. However, Ahonen 
teaches a system where a terminal forwards a unique public key over the air (over a 3G network, 1(37) to a 
content provider (terminal sends a registration message to a group controller, the message including a 
copy of the terminal's public key, f 38), wherein each terminal stores a unique private key corresponding 
to the unique public key (terminal creates a signature using the private key, 1(38 & 1(42, showing that the 
terminal stores the private key). Similarly to Hawkes's RK, the private key that corresponds to the 
forwarded unique public key in Ahonen is used to decrypt a received encrypted key encrypting key 
(KEK), which is similar to Hawkes's BAK (|4 1). The KEK is then used to decrypt a received encrypted 
traffic encrypting key (TEK, 1(41) which decrypts the broadcast content (1(36) that is received, possibly 
from the group controller (1(19). Therefore, it would have been obvious to one having ordinary skill in the 
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art at the time the invention was made to modify Hawkes's terminal such that each terminal (MS) 
comprises code that forwards a unique public key over the air to the content provider (CS), wherein the 
terminal includes code for storing securely a unique private key (instead of Hawkes's RK), corresponding 
to the unique public key. One of ordinary skill would have been motivated to perform this modification 
to achieve a simple mechanism for key dissemination, as taught by Ahonen fl|7). One of ordinary skill in 
the art at the time the invention was made would appreciate this benefit because Ahonen is using the 
existing, well-known, public key infrastructure to share a key, rather than a more complex protocol such 
as AKA or IKE. 

Regarding claim 78, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
accessible to a user (Hawkes discloses that data in the ME is easily accessed, j|64 and that SK is passed to 
the ME for decrypting of the broadcast content, therefore, the SK is accessible to a user). 

Regarding claim 79, Hawkes, as modified above, discloses wherein the short-term key 
information (SKI) is the short-term key encrypted using the broadcast access key (SKI may be the 
encryption of SK using BSK as the key, f 76). 

Regarding claim 80, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
generated by applying a cryptographic hash to a concatenation of the short-term key information (SKI) 
and the broadcast access key (BAK, f 76, last three lines). 

Regarding claim 82, Hawkes discloses an apparatus (MS, Fig. 4, #300) for receiving encrypting 
multimedia content broadcast over the air (Fig. 3, #206) from a content provider (CS, |63) to a plurality 
of apparatuses (Fig. 3, #206) authorized based on a broadcast access key (1(70), comprising a mobile 
equipment (ME, Fig. 4, #306) configured to decrypt the multimedia content using the short-term key (ME 
decrypts the received broadcast content using SK, ||80-81, last two lines of each), wherein the 
multimedia content is encrypted with the short-term key (SK, ]|81), and wherein the short-term key is 
generated using the broadcast access key (BAK) and short-term key information (SKI and BAK are 
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processed to determine SK, |76), and a secure processing unit (UIM, Fig. 4, #308) configure to securely 
store a unique key (RK is stored in SUMU, Fig. 4, #314, |74) that is not accessible to the mobile 
equipment (SUMU discourages unauthorized access to the information, ^[65 and RK is not provided to the 
ME, 172), wherein key storage in the secure processing unit more secure than key storage in the mobile 
equipment (UIM is considered secure, 165, where ME is considered insecure, 1(64), wherein the secure 
processing unit (SUPU) has processing power sufficient to decrypt an encrypted broadcast access key and 
to generate a short term key (UIM is able to recover the value of BAK, 170 and able to able to compute 
SK, 173), but does not have processing power sufficient to decrypt encrypted multimedia content (SUPU 
does not have significant processing power for functions beyond security and key procedures such as to 
allow encryption of the broadcast content of the HSBS, 1)66) and wherein the content provider (CS) 
encrypts a broadcast access key (BAK) with the unique key (RK) to authorize an apparatus having the 
secure processing unit (authorize the MS) securely storing the corresponding key (RK) to receive the 
encrypted multimedia content (BAK is encrypted with RK, 1)74 and RK is stored in the UIM, |74), 
receive the encrypted broadcast access key (BAK) over the air (Fig. 3, #206) from the content provider 
(BAKI is received from CS, 174), decrypt the encrypted broadcast access key (BAKI; RK is used in the 
UIM to decrypt BAK from BAKI, 174) and securely store the broadcast access key (BAK is stored in 
SUMU, 1(74), wherein the securely stored broadcast access key is not accessible to the mobile equipment 
(SUMU discourages unauthorized access to the information, 165 and the BAK is stored in the SUMU, 
1(74, where UIM is separate and secure from the ME, H64-70), receive the short-term key information 
(SKI) broadcast over the air from the content provider (CS sends SKI to MS, 176) to the plurality of 
apparatuses and generate the short-term key using the securely stored broadcast access key (BAK) and 
broadcast short-term key information (SKI and BAK are processed to determine SK, 1[76). Hawkes lacks 
the mobile equipment forwarding a unique public key over the air to the content provider and lacks the 
secure processing unit securely storing a unique private key (instead of Hawkes' s RK), corresponding to 
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the unique public key. However, Ahonen teaches a system where a terminal forwards a unique public key 
over the air (over a 3G network, |37) to a content provider (terminal sends a registration message to a 
group controller, the message including a copy of the terminal's public key, 1(38), wherein each terminal 
stores a unique private key corresponding to the unique public key (terminal creates a signature using the 
private key, ][38 & ][42, showing that the terminal stores the private key). Similarly to Hawkes's RK, the 
private key that corresponds to the forwarded unique public key in Ahonen is used to decrypt a received 
encrypted key encrypting key (KEK), which is similar to Hawkes's BAK (1)41). The KEK is then used to 
decrypt a received encrypted traffic encrypting key (TEK, 1)41) which decrypts the broadcast content 
(136) that is received, possibly from the group controller (1 1 9). Therefore, it would have been obvious to 
one having ordinary skill in the art at the time the invention was made to modify Hawkes's terminal such 
that the mobile equipment (ME) forwards a unique public key over the air to the content provider (CS) 
and the secure processing unit (UIM) stores a unique private key (instead of Hawkes's RK), 
corresponding to the unique public key. One of ordinary skill would have been motivated to perform this 
modification to achieve a simple mechanism for key dissemination, as taught by Ahonen (17). One of 
ordinary skill in the art at the time the invention was made would appreciate this benefit because Ahonen 
is using the existing, well-known, public key infrastructure to share a key, rather than a more complex 
protocol such as AKA or IKE. 

Regarding claim 83, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
accessible to a user (Hawkes discloses that data in the ME is easily accessed, 164 and that SK is passed to 
the ME for decrypting of the broadcast content, 178; therefore, the SK is accessible to a user). 

Regarding claim 84, Hawkes, as modified above, discloses wherein the short-term key 
information (SKI) is the short-term key encrypted using the broadcast access key (SKI may be the 
encryption of SK using BSK as the key, 176). 
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Regarding claim 85, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
generated by applying a cryptographic hash to a concatenation of the short-term key information (SKI) 
and the broadcast access key (BAK, 176, last three lines). 

Regarding claim 87, Hawkes discloses securely storing a unique key (RK, 165, 170, 1(72), in a 
secure processing unit (UIM/SUPU, 165) of a terminal (ME, 164) such that the key is not accessible to a 
mobile equipment of the terminal (UIM uses RK, 1)65, 1(70, where the ME only uses the recovered SK, 
170), wherein key storage in the secure processing unit (UIM) is more secure (1(65) than key storage in the 
mobile equipment (1(64), wherein the secure processing unit has processing power sufficient to decrypt an 
encrypted broadcast access key (170) and to generate a short term key (UIM is able to recover the value 
of BAK, 170 and able to able to compute SK, 173), and does not have processing power sufficient to 
decrypt encrypted multimedia content (SUPU does not have significant processing power for functions 
beyond security and key procedures such as to allow encryption of the broadcast content of the HSBS, 
166), and wherein the broadcast access key (BAK) is encrypted by the content provider using the unique 
key of the terminal to authorize the terminal to receive encrypted multimedia content (170); receiving the 
encrypted broadcast access key (170) over the air (mobile terminal, 157) from the content provider (CS, 
Fig. 3, #206); decrypting the encrypted broadcast access key and securely storing the broadcast access 
key (BAKI; RK is used in the UIM to decrypt BAK from BAKI, 174), wherein the securely stored 
broadcast access key is not accessible to the mobile equipment (SUMU discourages unauthorized access 
to the information, 165 and the BAK is stored in the SUMU, 174, where UIM is separate and secure from 
the ME, H64-70); receiving short-term key information and the encrypted multimedia content broadcast 
over the air from the content provider to a plurality of terminals (CS sends SKI to MS, 176) to the 
plurality of apparatuses and generate the short-term key using the securely stored broadcast access key 
(BAK) and broadcast short-term key information (SKI and BAK are processed to determine SK, 176), 
wherein the multimedia content is encrypted with a short-term key (177), and wherein the short-term key 
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is generated using the broadcast access key and the short-term key information (SKI and BAK are 
processed to determine SK, 176); generating the short-term key using the securely stored broadcast access 
key and the broadcast short-term key information (SKI and BAK are processed to determine SK, 176); 
and decrypting the multimedia content using the short-term key (1)77). Hawkes lacks the mobile 
equipment forwarding a unique public key over the air to the content provider and lacks the secure 
processing unit securely storing a unique private key (instead of Hawkes 's RK), corresponding to the 
unique public key. However, Ahonen teaches a system where a terminal forwards a unique public key 
over the air (over a 3G network, 137) to a content provider (terminal sends a registration message to a 
group controller, the message including a copy of the terminal's public key, 1)38), wherein each terminal 
stores a unique private key corresponding to the unique public key (terminal creates a signature using the 
private key, 138 & 142, showing that the terminal stores the private key). Similarly to Hawkes's RK, the 
private key that corresponds to the forwarded unique public key in Ahonen is used to decrypt a received 
encrypted key encrypting key (KEK), which is similar to Hawkes's BAK (141). The KEK is then used to 
decrypt a received encrypted traffic encrypting key (TEK, 141) which decrypts the broadcast content 
(136) that is received, possibly from the group controller (119). Therefore, it would have been obvious to 
one having ordinary skill in the art at the time the invention was made to modify Hawkes's terminal such 
that the mobile equipment (ME) forwards a unique public key over the air to the content provider (CS) 
and the secure processing unit (UIM) stores a unique private key (instead of Hawkes's RK), 
corresponding to the unique public key. One of ordinary skill would have been motivated to perform this 
modification to achieve a simple mechanism for key dissemination, as taught by Ahonen (17). One of 
ordinary skill in the art at the time the invention was made would appreciate this benefit because Ahonen 
is using the existing, well-known, public key infrastructure to share a key, rather than a more complex 
protocol such as AKA or IKE. 
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Regarding claim 88, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
accessible to a user (Hawkes discloses that data in the ME is easily accessed, |64 and that SK is passed to 
the ME for decrypting of the broadcast content, |f78; therefore, the SK is accessible to a user). 

Regarding claim 89, Hawkes, as modified above, discloses wherein the short-term key 
information (SKI) is the short-term key encrypted using the broadcast access key (SKI may be the 
encryption of SK using BSK as the key, f 76). 

Regarding claim 90, Hawkes, as modified above, discloses wherein the short-term key (SK) is 
generated by applying a cryptographic hash to a concatenation of the short-term key information (SKI) 
and the broadcast access key (BAK, f 76, last three lines). 

1 0. Claims 70, 76, 8 1 , 86 & 9 1 are rejected under 35 U.S.C. 1 03(a) as being unpatentable over 
Hawkes and Ahonen, as applied to claims 69, 75, 80, 85 & 87 above, in further view of Applied 
Cryptography. Second Edition by Bruce Schneier (Schneier). 

Regarding claims 70, 76, 81, 86 & 91, Hawkes, as modified above, discloses wherein the short- 
term information is at least partly unpredictable, but lacks explicitly where it is a random value. 
However, Schneier discloses that good keys for encryption are random, such that all possible values are 
equally likely (i.e. unpredictable, p. 173, §Random Keys, ]|1). Therefore, it would have been obvious to 
one having ordinary skill in the art at the time the invention was made to modify Hawkes invention, as 
modified above, such that the short-term information is a random value. One of ordinary skill in the art 
would have been motivated to perform such a modification to enhance the security of the encrypted data 
such that the key is unpredictable via its randomness, as taught by Schneier. 



Conclusion 
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